Nov 17 2022 04:24 PM
Hello team,
I have a query that is scatching my head... I wanna know how I can find users outside of Intune, I wanna block them and force them within Intune...
Regards
Jamalie.
Nov 17 2022 10:39 PM
Hi @Jamalie
Many ways you can do this, first one came to my mind Navigate to Azure AD - Devices - All Devices - Export the devices to Excel - Filter results by Not Compliant and none for MDM. This will give you the idea of devices not managed by Intune. Then you can apply a Conditional Access to allow only Compliant Devices to access your tenant. You need to hand hold the users to register their devices depend if using hybrid or Azure AD registered.
Moe
Nov 18 2022 02:38 AM - edited Nov 18 2022 02:41 AM
Thank you for the feedback, we don't have the conditional access license ,what would be the alternative way.
Nov 18 2022 02:54 AM - edited Nov 18 2022 03:00 AM
I would go through the report you going to export and disable the access for the devices that not Compliant /not managed by intune.Check the activity column to have an idea of the stale devices. Without Conditional Access you need to keep doing this manually. CA is an essential security tool for transitioning to the cloud so you may need to consider it before moving workload to the cloud.
Moe
https://learn.microsoft.com/en-us/azure/active-directory/devices/manage-stale-devices
Nov 18 2022 03:01 AM